Blue Coat is unable to provide a resolution for this, as this is beyond Blue Coat's control. See below for a workaround.
The workaround is to tell the ProxySG appliance to ignore the setting passed by the OCSP responder, and use the value set in the Device Profile
In the Management Console, select Configuration > SSL > OCSP
, select your profile, then click Edit
. You will see the Edit OCSP responder
Change the Response Cache TTL
from Use TTL from the OCSP response
(the default) to Use TTL:
Set Use TTL: 1
Blue Coat has been successful setting this to 1 day; you might need to extend this period slightly.